Candidate: CVE-2015-3239 PublicDate: 2015-08-26 19:59:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3239 http://savannah.nongnu.org/bugs/?45276 http://git.savannah.gnu.org/cgit/libunwind.git/commit/?id=396b6c7ab737e2bff244d640601c436a26260ca1 Description: Off-by-one error in the dwarf_to_unw_regnum function in include/dwarf_i.h in libunwind 1.1 allows local users to have unspecified impact via invalid dwarf opcodes. Ubuntu-Description: Notes: seth-arnold> I saw nothing in callers of this macro that would prevent less-than-zero accesses: input params were sometimes integers, sometimes harder to determine the type. Debian codesearch shows many duplications of the <= mistake with dwarf_to_unw_regnum arrays in other files, not just the one dwarf_i.h. Bugs: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=790830 Priority: low Discovered-by: Assigned-to: CVSS: Patches_libunwind: upstream: http://git.savannah.gnu.org/cgit/libunwind.git/commit/?id=396b6c7ab737e2bff244d640601c436a26260ca1 upstream_libunwind: released (0.99-0.2+deb6u1, 1.1-4) precise_libunwind: ignored (reached end-of-life) precise/esm_libunwind: DNE (precise was needed) trusty_libunwind: ignored (reached end-of-life) trusty/esm_libunwind: DNE (trusty was needed) utopic_libunwind: ignored (reached end-of-life) vivid_libunwind: ignored (reached end-of-life) vivid/stable-phone-overlay_libunwind: DNE vivid/ubuntu-core_libunwind: DNE wily_libunwind: ignored (reached end-of-life) xenial_libunwind: not-affected (1.1-4.1) esm-infra/xenial_libunwind: not-affected (1.1-4.1) yakkety_libunwind: ignored (reached end-of-life) zesty_libunwind: ignored (reached end-of-life) artful_libunwind: ignored (reached end-of-life) bionic_libunwind: not-affected (1.1-4.1) cosmic_libunwind: not-affected (1.1-4.1) disco_libunwind: not-affected (1.1-4.1) eoan_libunwind: not-affected (1.1-4.1) focal_libunwind: not-affected (1.1-4.1) groovy_libunwind: not-affected (1.1-4.1) hirsute_libunwind: not-affected (1.1-4.1) impish_libunwind: not-affected (1.1-4.1) jammy_libunwind: not-affected (1.1-4.1) devel_libunwind: not-affected (1.1-4.1) Patches_racket: other: http://git.savannah.gnu.org/cgit/libunwind.git/commit/?id=396b6c7ab737e2bff244d640601c436a26260ca1 upstream_racket: needed precise_racket: ignored (reached end-of-life) precise/esm_racket: DNE (precise was needed) trusty_racket: ignored (reached end-of-life) trusty/esm_racket: DNE (trusty was needed) utopic_racket: ignored (reached end-of-life) vivid_racket: ignored (reached end-of-life) vivid/stable-phone-overlay_racket: DNE vivid/ubuntu-core_racket: DNE wily_racket: ignored (reached end-of-life) xenial_racket: ignored (end of standard support, was needed) yakkety_racket: ignored (reached end-of-life) zesty_racket: ignored (reached end-of-life) artful_racket: ignored (reached end-of-life) bionic_racket: needed cosmic_racket: ignored (reached end-of-life) disco_racket: ignored (reached end-of-life) eoan_racket: ignored (reached end-of-life) focal_racket: needed groovy_racket: ignored (reached end-of-life) hirsute_racket: ignored (reached end-of-life) impish_racket: needed jammy_racket: needed devel_racket: needed Patches_android-platform-external-libunwind: upstream: http://git.savannah.gnu.org/cgit/libunwind.git/commit/?id=396b6c7ab737e2bff244d640601c436a26260ca1 upstream_android-platform-external-libunwind: released (7.0.0+r1-4) precise/esm_android-platform-external-libunwind: DNE trusty_android-platform-external-libunwind: DNE trusty/esm_android-platform-external-libunwind: DNE xenial_android-platform-external-libunwind: ignored (end of standard support, was needed) bionic_android-platform-external-libunwind: not-affected (7.0.0+r1-4) cosmic_android-platform-external-libunwind: not-affected (8.1.0+r23-2) disco_android-platform-external-libunwind: not-affected (8.1.0+r23-2) eoan_android-platform-external-libunwind: not-affected (8.1.0+r23-2) focal_android-platform-external-libunwind: not-affected (8.1.0+r23-2) groovy_android-platform-external-libunwind: not-affected (8.1.0+r23-2) hirsute_android-platform-external-libunwind: not-affected (8.1.0+r23-2) impish_android-platform-external-libunwind: not-affected (8.1.0+r23-2) jammy_android-platform-external-libunwind: not-affected (8.1.0+r23-2) devel_android-platform-external-libunwind: not-affected (8.1.0+r23-2)